$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa File: 3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa (raw, json) Hash identifier: 94hNYux8eWZz1uyVT99V5HDegQ13UDwZ7M1KtXnNuOw= Subject key identifier: A0:C0:1A:04:D8:18:67:A9:79:B4:DC:7F:60:11:D1:B5:04:55:A6:95 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 54A9899A0472B281395EC8579B8321D5DA48A299 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa Signing time: Mon 02 Jun 2025 02:04:39 +0000 ROA not before: Mon 02 Jun 2025 01:59:39 +0000 ROA not after: Mon 01 Jun 2026 02:04:39 +0000 asID: 135478 IP address blocks: 175.158.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:a9:89:9a:04:72:b2:81:39:5e:c8:57:9b:83:21:d5:da:48:a2:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jun 2 01:59:39 2025 GMT Not After : Jun 1 02:04:39 2026 GMT Subject: CN=A0C01A04D81867A979B4DC7F6011D1B50455A695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0b:be:bd:1d:a9:b3:e2:5c:92:7c:61:86:61: 47:3c:e9:6e:e0:ea:27:00:de:99:62:1c:b0:71:c4: 45:ab:d1:cb:03:6e:8b:2a:4a:2a:5e:85:15:47:4d: d5:bb:79:09:90:ba:d1:80:fc:87:d4:e4:47:e2:f2: 0d:d3:06:d2:c6:a9:b0:85:44:4c:7e:00:fe:59:21: 26:be:ac:93:f7:11:5e:81:7c:42:a8:97:67:ef:d3: 6c:8c:83:02:bb:63:34:d3:99:85:2a:94:c1:01:fe: 89:4c:f7:76:b9:32:be:11:c0:5a:3f:fa:19:52:07: 1f:90:cc:8f:cc:4f:66:bc:d0:b2:dc:90:9b:8c:6d: 27:dd:b9:31:c8:57:ea:29:b1:66:a6:da:04:4b:89: a0:28:9c:55:85:18:79:1a:c3:76:21:43:b2:50:ce: 1e:6a:9e:ce:85:83:39:78:f6:78:e6:63:c2:8c:c4: 7a:37:75:3a:24:dc:fb:cf:3c:1d:74:2e:42:61:47: c4:bc:ce:6c:07:0b:8d:5f:04:b9:7f:1e:25:41:21: b8:b0:1b:d2:ab:50:25:5b:b2:1a:63:32:f1:e6:6a: a9:b5:bf:98:75:19:b9:47:54:35:46:b9:ad:ff:29: 5b:44:b2:29:db:b9:d2:72:67:89:cf:a2:bc:26:38: 12:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C0:1A:04:D8:18:67:A9:79:B4:DC:7F:60:11:D1:B5:04:55:A6:95 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.158.48.0/20 Signature Algorithm: sha256WithRSAEncryption b0:88:97:26:e9:b1:c4:ec:1a:1f:27:6c:73:e6:3e:2c:55:a6: 79:86:b8:21:8e:d4:29:ea:55:b1:21:94:74:49:50:3e:1a:ea: e3:25:7b:1f:00:e6:d6:0a:7d:4c:b9:5e:59:ea:a7:52:73:f2: a8:c5:82:51:17:3c:f2:65:e0:f8:fb:79:7a:e4:d0:de:94:a1: 33:75:84:e5:af:2a:c8:44:ec:e9:4b:84:3c:43:2c:09:1a:e9: 21:06:ba:27:fb:66:05:b3:9e:eb:49:7e:81:22:a9:7f:72:85: 2f:22:62:47:13:f5:fb:0b:17:57:7e:93:0a:64:3e:b2:0e:34: 08:8f:b7:69:ab:05:b0:c5:f9:54:87:00:fb:91:7e:ec:f7:27: ac:bf:3f:97:12:71:e0:f3:e5:4e:39:b2:56:76:6a:49:99:56: 72:98:be:87:02:bc:f0:25:b6:67:cc:4b:22:4f:20:ad:bc:fd: 43:98:92:84:59:44:8e:64:ef:9c:6e:bc:07:dd:11:b3:be:8c: a1:a3:6e:c9:ab:2d:17:1d:4d:ca:e9:93:af:4e:50:5c:ab:81: d8:0f:5f:e0:75:55:be:1f:93:73:84:ce:de:b8:74:ae:34:a5: c2:de:be:a9:5c:53:98:e5:23:eb:c2:45:62:15:4b:23:40:e7: 1c:99:22:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVKmJmgRysoE5XshXm4Mh1dpIopkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA2MDIwMTU5MzlaFw0yNjA2MDEwMjA0MzlaMDMxMTAvBgNV BAMTKEEwQzAxQTA0RDgxODY3QTk3OUI0REM3RjYwMTFEMUI1MDQ1NUE2OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMC769Hamz4lySfGGGYUc86W7g 6icA3pliHLBxxEWr0csDbosqSipehRVHTdW7eQmQutGA/IfU5Efi8g3TBtLGqbCF REx+AP5ZISa+rJP3EV6BfEKol2fv02yMgwK7YzTTmYUqlMEB/olM93a5Mr4RwFo/ +hlSBx+QzI/MT2a80LLckJuMbSfduTHIV+opsWam2gRLiaAonFWFGHkaw3YhQ7JQ zh5qns6Fgzl49njmY8KMxHo3dTok3PvPPB10LkJhR8S8zmwHC41fBLl/HiVBIbiw G9KrUCVbshpjMvHmaqm1v5h1GblHVDVGua3/KVtEsinbudJyZ4nPorwmOBJrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoMAaBNgYZ6l5tNx/YBHRtQRVppUwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMxMzczNTJlMzEzNTM4MmUzNDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEr54wMA0GCSqG SIb3DQEBCwUAA4IBAQCwiJcm6bHE7BofJ2xz5j4sVaZ5hrghjtQp6lWxIZR0SVA+ GurjJXsfAObWCn1MuV5Z6qdSc/KoxYJRFzzyZeD4+3l65NDelKEzdYTlryrIROzp S4Q8QywJGukhBron+2YFs57rSX6BIql/coUvImJHE/X7CxdXfpMKZD6yDjQIj7dp qwWwxflUhwD7kX7s9yesvz+XEnHg8+VOObJWdmpJmVZymL6HArzwJbZnzEsiTyCt vP1DmJKEWUSOZO+cbrwH3RGzvoyho27Jqy0XHU3K6ZOvTlBcq4HYD1/gdVW+H5Nz hM7euHSuNKXC3r6pXFOY5SPrwkViFUsjQOccmSIt -----END CERTIFICATE-----Generated at Sun Jun 8 11:51:22 2025 by rpki-client